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This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 



T 1. (currently amended) A method by which a mobile 

2 subscriber with a WAP-enabled terminal can access a WEB or WAP 

3 server, comprising the steps of: 

4 said terminal sending a request for said server to a WAP 

5 gateway, wherein encryption in the wireless 

6 interface between said WAP-enabled terminal and said 

7 gateway is based on WTLS (Wireless Transport Layer 

8 Security) , and wherein an encryption protocol used 

9 by said server is based on one or both of the SSL or 

10 the TLS security protocol; and 

11 converting between WTLS and said one or both of the SSL 

12 or the TLS security protocol in a secured domain of 

13 said server administrated by an administrator, 

14 wherein a plurality of WTLS encrypted packets sent by 

15 said terminal are routed by said gateway to said 

16 secured domain with said gateway not decrypting any 

17 portion of at least some number lcoo than all of the 

18 encrypted packets transported during a session. 

1 2. (previously presented) Method according to claim 1, 

2 wherein said gateway routes said packets to a proxy in said 

3 secured domain, said proxy using at least one protocol layer 

4 of the WAP protocol . 

1 3. (previously presented) Method according to claim 2, 

2 wherein said packets are routed according to one or both of 

3 the URL or the domain name of the requested page in said 

4 gateway. 
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1 4. (previously presented) Method according to claim 2, 

2 wherein said packets are routed by said gateway according to a 

3 port number embedded in said packets. 

1- 5. (previously presented) Method according to claim 4, 

2 wherein said encrypted packets are routed according to 

3 different port numbers to different secured domains. 

1 6. (previously presented) Method according to claim 4, 

2 wherein said port number is extracted in an application layer 

3 of said gateway from the URL of the requested page. 

1 7. (original) Method according to claim 6, wherein said 

2 port number is extracted from only a restricted number of 

3 packets during a session, and wherein the routing of at least 

4 one of the following packets depends on this extracted port 

5 number. 

1 8. (previously presented) Method according to claim 7, 

2 wherein a proxy server in said secured domain extracts one or 



3 both of the URL or the port number of the received packets and 

4 wherein the proxy server sends back a command to said gateway 

5 if it receives a packet with a different one or both of an URL 

6 or a port number. 



1 9. (previously presented) Method according to claim 4, 

2 wherein said port number is extracted from said URL of the 

3 required web page in said terminal . 

1 10. (previously presented) Method according to claim 9, 

2 wherein said port number is extracted by a browser from said 

3 URL of the required web page. 
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1 11. (original) Method according to claim 8, wherein the 

2 browser in said terminal only copies said port number in said 

3 packets if an end-to-end secured connection is requested. 

1 12. (original) Method according to claim 3, wherein said 

2 packets in said gateway are routed to a secured domain if said 

3 port number is comprised in a predefined range. 

1 13. (previously presented) Method according to claim 3, 

2 wherein said gateway sends a redirect command to said terminal 

3 if an end-to-end secured connection is requested. 

1 14. (previously presented) Method according to claim 13, 

2 wherein said redirect command is time-limited. 

1 15. (previously presented) Method according to claim 13, 

2 wherein a proxy server in said secured domain extracts one or 

3 both of the URL or the port number of the received packets and 

4 sends a redirect command back to said terminal as soon as the 

5 session is to be routed to said gateway. 

1 16. (original) Method according to claim 13, wherein said 

2 redirect command contains a forwarding address which is 

3 extracted from a document made accessible by said WEB or WAP 

4 server. 

1 17. (original) Method according to claim 13, wherein said 

2 redirect command contains a document which includes the 

3 forwarding address. 
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1 18. (previously presented) A method according to claim 1, 

2 by which a mobile user with a WAP-enabled terminal can access 

3 a WEB or WAP server, wherein 

4 said terminal sends a request for said server to said WAP 

5 gateway, wherein a browser in said terminal extracts 

6 the port number of the demanded WEB or WAP page and 

7 copies it to packets sent to said gateway; and 

8 wherein 

9 said packets are routed, using said gateway, according to 
10 this port number. 

11 

1 19. (currently amended) A gateway comprising: 

2 means for receiving packets WTLS- encrypted according to 

3 the WTLS protocol from WAP-enabled terminals; 

4 means for converting said packets into SSL-encrypted 

5 requests; and 

6 means for transmitting said SSL-encrypted requests to a 

7 receiving server, wherein said gateway can recognize 

8 WTLS -encrypted packets that are to be sent on 

9 transparently and can convert said WTLS -encrypted 

10 packets into said SSL-encrypted request without 

11 decrypting the information contained in at least 

12 some number of said WTLS -encrypted packets. 

13 

1 20. (previously presented) Gateway according to claim 19, 

2 wherein said WTLS -encrypted packets are routed according to 

3 one or both of the URL or the domain name of the requested 

4 page . 
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1 21. (previously presented) Gateway according to the claim 

2 19, wherein said WTLS- encrypted packets are routed according 

3 to the port number of the requested page . 

1 22. (previously presented) Gateway according to claim 21, 

2 wherein said WTLS -encrypted packets are routed to different 

3 secured domains according to different port numbers. 

1 23. (previously presented) Gateway according to claim 21, 

2 wherein said port number is extracted from the URL of the 

3 requested page in an application layer of said gateway. 

1 24. (previously presented) Gateway according to claim 21, 

2 wherein 

3 said port number is extracted during a session only from 

4 a restricted number of WTLS-encrypted packets, and 

5 wherein 

6 the routing of at least one following WTLS-encrypted 

7 packet depends on said extracted port number. 

1 

2 25. (currently amended) A method by which a terminal can 

3 access a server, said method comprising the steps of: 

4 said terminal sending a request for said server to a 

5 gateway, wherein security utilized between said 

6 terminal and said gateway is based on a first 

7 security protocol, said first security protocol 

8 including an encryption; 

9 securing said server with a second security protocol, 

10 said second security protocol also including an 

11 encryption; and 
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12 converting between said first and said second security 

13 protocol in a secured domain of said server 

14 administrated by an administrator or in said 

15 gateway, wherein 

16 a plurality of encrypted packets sent by said terminal 

17 are routed by said gateway to said secured domain 

18 without said gateway decrypting all any portion of 

19 at least some number of the packets transmitted 

20 during a session. 

1 26. (currently amended) A method for performing end-to- 

2 end secure data transfer between a terminal and a server, 

3 wherein said terminal is connected to said server via a 

4 wireless connection between said terminal and a gateway, said 

5 method comprising the steps of: 

6 said terminal requesting a secure communication session 

7 with said server via said gateway, said requesting 

8 including the steps of: 

9 said terminal generating a request including request 

10 packets encrypted using a WTLS protocol, 

11 said terminal sending said request to said gateway, 

12 said gateway forwarding said request to said server 

13 or to another server, wherein said gateway does 

14 not decrypt all of said request packets, and 

15 said server or said another server decrypting some 

16 number of said request packets using said WTLS 

17 protocol; 

18 and 

19 said server or said another server serving data to said 

20 terminal via said gateway, said serving including 

21 the steps of : 



Amendments to the Claims 



Page 7 of 13 



Appl. No. 09/592,916 

Amdt. Dated September 20, 2006 

Reply to Amdt. of July 14, 2006 



22 said server or said another server sending said data 

23 including data packets encrypted using said 

24 WTLS protocol to said gateway; 

25 said gateway forwarding said data packets to said 

26 terminal, wherein said gateway does not decrypt 

27 any portion of at least some number arHr of said 

28 data packets; and 

29 said terminal decrypting said data packets using 

30 said WTLS protocol . 

1 

2 27. (previously presented) The method of claim 26, 

3 wherein said gateway must decrypt some but not all of said 

4 request packets to forward said request to said server or said 

5 another server . 

1 28. (previously presented) The method of claim 27, 

2 wherein said gateway must decrypt some but not all of said 

3 data packets to forward said data to said terminal. 

1 29. (previously presented) The method of claim 26, 

2 wherein a browser on said terminal provides information to 

3 said gateway for forwarding said request to said server or 

4 said another server without said gateway decrypting any of 

5 said request packets. 

1 30. (previously presented) The method of claim 29, 

2 wherein said information includes one or more of: a port 

3 number, a domain name, and an URL. 
4 
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4 31. (currently amended) A system for performing end-to- 

5 end secure data transfer between a terminal and a server, said 

6 system comprising: 

7 a gateway adapted for receiving a request for a secure 

8 session with said server from the terminal, wherein 

9 said request includes request packets encrypted 

10 using a WTLS protocol, and wherein said gateway is 

11 also adapted for forwarding said request to said 

12 server or to another server, wherein said gateway 

13 does not decrypt all of said request packets for 

14 performing said forwarding; 

15 said server or said another server adapted for decrypting 

16 some number of said request packets 'using said WTLS 

17 protocol and also adapted for serving data including 

18 data packets encrypted using said WTLS protocol to 

19 said gateway , wherein 

20 said gateway forwards said data to said terminal without 

21 decrypting any portion of at least some number aii 

22 of said data packets, and wherein 

23 the terminal decrypts said data packets using said WTLS 

24 protocol . 

1 

2 32. (previously presented) The system of claim 31, 

3 wherein said gateway must decrypt some but not all of said 

4 request packets to forward said request to said server or said 

5 another server. 

1 33. (previously presented) The system of claim 32, 

2 wherein said gateway must decrypt some but not all of said 

3 data packets to forward said data to the terminal . 
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1 34. (previously presented) The system of claim 32, 

2 wherein a browser on the terminal provides information to said 

3 gateway for forwarding said request to said server or said 

4 another server without said gateway decrypting any of said 

5 request packets. 

1 3 5 (previously presented) The system of claim 34, wherein 

2 said information includes one or more of a port number, a 

3 domain name, and an URL. 

1 36. (previously presented) The method of claim 1, wherein 

2 said gateway determines whether an end-to-end secured routing 

3 is requested according to the URL of the requested page. 

1 3 7 (previously presented) The gateway of claim 19, 

2 wherein said gateway determines whether an end-to-end secured 

3 routing is requested according to the URL of the requested 

4 page . 
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